package com.leyou.config;

import com.leyou.properties.CorsProperties;
import org.springframework.boot.context.properties.EnableConfigurationProperties;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.cors.CorsConfiguration;
import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
import org.springframework.web.filter.CorsFilter;

/**
 * Created by IntelliJ IDEA.
 *
 * @author: wangzibeng
 * Date: 2019/4/26 0026
 * Time: 11:47
 */

@EnableConfigurationProperties(value = CorsProperties.class)
@Configuration
public class GlobalCorsConfig {
    @Bean
    public CorsFilter corsFilter(CorsProperties corsProperties) {
        //1.添加CORS配置信息
        CorsConfiguration config = new CorsConfiguration();
        //1) 允许的域,不要写*，否则cookie就无法使用了
        corsProperties.getAllowedOrigins().forEach(config::addAllowedOrigin);
        //2) 是否发送Cookie信息
        config.setAllowCredentials(corsProperties.getAllowCredential());
        //3) 允许的请求方式
        corsProperties.getAllowedMethods().forEach(config::addAllowedMethod);
        //4)配置有效期
        config.setMaxAge(corsProperties.getMaxAge());
        // 5）允许的头信息
        corsProperties.getAddAllowedHeaders().forEach(config::addAllowedHeader);
        //2.添加映射路径，我们拦截一切请求
        UrlBasedCorsConfigurationSource configSource = new UrlBasedCorsConfigurationSource();
        configSource.registerCorsConfiguration(corsProperties.getFilterPath(), config);
        //3.返回新的CorsFilter.
        return new CorsFilter(configSource);
    }
}